Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/51CE3648CE3811EFB637A781762E951A.roa
File: 51CE3648CE3811EFB637A781762E951A.roa (raw, json)
Hash identifier: yw2htylcEvh8QQVKqaOSPU6/1cluVboYOPzw1gj6IKM=
Subject key identifier: 0A:53:DE:18:22:EB:90:94:06:08:CD:77:CC:2A:D9:2D:68:2B:B4:5D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010231
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/51CE3648CE3811EFB637A781762E951A.roa
Signing time: Thu 09 Jan 2025 03:17:56 +0000
ROA not before: Thu 09 Jan 2025 03:17:52 +0000
ROA not after: Fri 09 Jan 2026 03:17:52 +0000
asID: 17561
IP address blocks: 156.247.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66097 (0x10231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 03:17:52 2025 GMT
Not After : Jan 9 03:17:52 2026 GMT
Subject: CN=677f3fe4-8238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:dc:78:a1:41:0f:cf:ad:dc:4d:9e:18:fe:9f:
36:79:e8:22:7d:f4:2e:6b:72:aa:e7:db:21:30:e9:
f8:3d:f7:ef:30:6a:cc:f0:ea:16:55:04:34:89:82:
ca:76:8a:2e:58:3f:15:f9:4d:f9:0f:6e:83:b0:a2:
5f:41:a1:18:ab:82:f4:00:dd:60:fb:4d:48:0c:60:
34:e2:bb:44:e3:77:29:e8:f3:57:f3:3f:f5:32:d0:
94:b2:54:2b:63:44:6a:65:ef:a5:5d:a6:e7:74:2d:
49:db:7d:10:a7:60:f7:10:d3:42:9c:3c:60:74:60:
06:92:98:d3:68:b1:5e:b8:64:66:9a:46:24:f8:e3:
75:b4:18:72:e5:5e:24:c5:da:da:94:96:c8:d2:50:
34:fc:aa:59:b2:b5:8e:85:ab:44:20:0f:68:f9:49:
17:51:fe:f2:bb:2b:c8:cd:1c:90:01:8a:26:46:c5:
da:40:0f:58:0f:87:57:81:36:2d:b8:58:55:b4:93:
63:4d:13:d8:e9:18:d1:68:b8:60:de:44:f4:75:92:
61:bc:84:6f:bd:c0:8c:32:6b:d0:d0:e1:b0:aa:e5:
6d:25:3e:f9:f2:37:a0:5b:47:1e:23:78:1f:60:f8:
ae:63:62:20:db:8b:7d:59:2b:39:6f:4f:53:69:a1:
1c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:53:DE:18:22:EB:90:94:06:08:CD:77:CC:2A:D9:2D:68:2B:B4:5D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/51CE3648CE3811EFB637A781762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.44.0/24
Signature Algorithm: sha256WithRSAEncryption
37:17:de:7f:7e:08:f1:b6:e6:c4:3e:5e:ed:6e:7c:3e:23:cb:
cb:c5:1d:3c:8c:5d:2f:09:68:a8:19:01:e4:25:3a:ab:a0:91:
71:1b:d6:80:fa:73:c9:4e:ba:d4:a6:f9:02:13:36:be:8b:1b:
bc:87:80:4c:18:92:36:cb:8d:8c:86:7b:4e:54:80:07:82:5c:
26:31:36:31:56:77:13:c4:2e:e8:02:a1:d2:a8:d1:fa:14:db:
82:47:60:d5:2d:29:69:b7:68:99:70:04:9b:ad:78:75:dd:c1:
56:1d:1e:d0:93:97:88:31:21:05:e8:62:d2:eb:4b:e0:a7:46:
0d:87:14:75:3b:d8:1b:a7:39:bc:d4:4c:e8:22:a3:f6:e5:c9:
c6:7f:2a:94:80:71:12:79:9e:25:fc:6d:57:a8:dc:6c:d2:4c:
aa:0c:4c:53:ed:a4:79:4e:fe:52:ac:17:99:9d:94:22:93:49:
27:fe:96:29:0d:03:59:1a:ee:40:25:c5:f6:1b:d6:1e:bf:3c:
6c:ba:04:13:10:50:d4:62:c9:b1:18:eb:7f:a3:d9:45:15:cb:
b6:03:f7:36:0e:bd:b8:63:00:39:33:dc:43:37:68:77:7e:f8:
38:15:e1:61:08:b7:23:a9:4b:c9:81:6d:b8:f8:1a:da:55:98:
ca:df:1f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:39:41 2025 by rpki-client